Direct secondary device interface by a host

ABSTRACT

A device has a controller and a function module configured to be in communication with the controller as a result of the controller receiving a pass-through vendor specific command. In some embodiments the controller may configured to strip data intended for the function module from the vendor specific command and send the stripped data to the function module.

RELATED APPLICATIONS

This application is a continuation of U.S. application Ser. No.11/110,612, titled “DIRECT SECONDARY DEVICE INTERFACE BY A HOST”, filedApr. 19, 2005 (allowed), which claims the benefit of a previously filedU.S. Provisional Patent Application No. 60/564,125 filed on Apr. 20,2004, and entitled “DIRECT SECONDARY DEVICE INTERFACE BY A HOST,” bothof which are incorporated herein by reference in their entirety.

BACKGROUND OF THE INVENTION

1. Field of the Invention

The present invention relates generally to the field of storage systemsand particularly to a method and apparatus for providing directinterface between secondary function devices and application softwaremodules included in the host of a storage system.

2. Description of the Prior Art

With the advent of nonvolatile or flash memory, consumer electronicdevices have come to enjoy a wide variety of applications, such as amemory drive removably connectable to a Personal Computer (PC) or othersuch host devices.

FIG. 1 shows a prior art PC storage system 10 to include a host 12coupled to a storage device 14, which may or may not be removablyconnected to the host 12. The device 14 is removably connectable to thehost 12 through the interface 28, which in one example, is a UniversalStandard Bus (USB) connector. The host 12 is shown to includeapplication software module 16 coupled to a controller driver module 18.The controller device 20 is shown coupled to a sensor 22 and a flashmemory unit 24. The flash memory unit 24 includes flash or nonvolatilememory for storing various types of electronic information even when nopower is provided to the system 10. Example of the type of informationstored in the unit 24 is based on the application of the system 10 andcan be digital photographs, passwords, personal settings and the like.

The sensor 22 is shown connected to the device 20 through a connector26, which in one example is an Serial Peripheral Interface (SPI)interface. The sensor 22 is a fingerprint sensor for detecting a humanfingerprint when the tip of a finger is swiped thereover. The sensor 22,after noting a particular fingerprint, upon the completion of a fingerswipe, causes storage of the fingerprint information in the flash memoryunit 24 through the application software module 16, again through thecontroller device 20. In this manner, the sensor 22 is intended to add alevel of security to the system 10 so that only the person whosefingerprint is recognized or matched to previously stored fingerprintinformation is given access to information stored in the flash memoryunit 24.

An example of the application software module 16 includes ‘Smartgenie’,which is a software program for operating fingerprint information,causing storage of passwords and directing encryption information andother security-related information. The driver module 18 allows themodule 16 to communicate with the controller device 20 by convertinghigh-level software language to a lower-level comprehendible to hardwaresuch as the controller device 20. Thus, the driver module 18 issuescommands that are transmitted through the interface 28 to the controllerdevice 20 that may or may not be followed by data through the sameinterface. As earlier stated, the host 12 may be a PC including anoperating system, such as Windows by Microsoft, Inc. of Seattle, fordirecting system functions and mapping memory and recognizing entrypoints for various devices connected to the host 12.

The problem with the system 10 is that the sensor 22 remains unknown tothe operating system of the host 12 due to a lack of entry point intothe sensor 22. Stated differently, the operating system has no way ofdirectly accessing the sensor 22, as the standard driver module, ordriver module 18, does not have an actual entry point for the sensor 22.The driver module 18 generally directs the controller device 20, which,in turn, controls the flash memory unit 24 and the sensor 22.

In the prior art system 10, the application software module 16communicates to the flash memory unit 24 because the controller device20 is only allowed to communicate with the flash memory unit 24 and notthe sensor 22, in accordance with the USB standard, which dictates thecommunication occurring through the interface 28. A need arises for theapplication software module 16 to communicate with the sensor 22.

FIG. 2 shows the prior art system 10 of FIG. 1 including some of thefunctions and devices depicted in FIG. 1 in addition to others. Forexample, in FIG. 2, the host 12 is shown to include three drivermodules, the controller driver module 18, a sensor driver module 32 anda hub driver module 34. The storage device 14 is shown to include a hub30 in addition to the controller device 20 and the sensor 22.

The driver module 32 communicates with the sensor 22 is shown coupled tothe storage device 14 through the driver module 34 and the driver module18 is also coupled to the storage device 14 through the driver module34. Particularly, the driver module 34 causes coupling of the drivermodules 18 and 32 to the hub 30 of the storage device 14.

The hub 30 is shown coupled to the sensor 22 and to the controllerdevice 20. FIG. 2 shows that the way in which the system 10 works inorder for the operating system (Windows for example) of the host 12 toload the driver module 32 to allow the application software module 16 tocommunicate with the sensor 22. There needs to be a system removing thedriver module 34 and the hub 30 from the system 10. Also, there needs tobe a system such that the driver module 32 is moved into the applicationsoftware module 16 so that other applications of the host 12 are unawareof the sensor 22 through standard discovery mechanisms (querying thehost's operating system).

The driver module 18 is for causing communication to flash memory viathe controller device 20, whereas, the driver module 32 is for causingcommunication to the sensor 22. At any given time, the hub 30 determinesa communication path either with the controller device 20 or the sensor22, thus, the driver modules 32, 18 and 34 cannot directly and upontheir wish communicate with the controller device 20 or sensor 22. Theproblem with such prior art systems is that all of the devices, i.e. thesensor 22, the flash memory and any other device connected in thismanner (through the use of drivers within the host) are known toeveryone and can thus be accessed, manipulated and/or deleted, whichpresents security issues. Additionally, the hub 30 and the drivermodules 32 and 34 of FIG. 2 add unnecessary real estate to the system 10resulting in increased manufacturing costs associated therewith. Even ifthe hub 30 is implemented in another device so that it appears that thesystem real estate is less than having the individual presence of a hub,the security concerns still remain and there are, nevertheless,unnecessary manufacturing costs.

In the case of the desire to have a device be un-temperable by thirdparties, there is a need for secondary devices to be accessible only toa select and predetermined number of parties while unknown to others soas to preserve security and at the same time, decrease the number ofelectronic devices so as to decrease system manufacturing costs.

The need also arises to allow the system to operate with less currentthus helping to use devices that qualify under low power devices in theUSB specification (for example) and to preserve battery power inwireless devices that include their own power source.

SUMMARY OF THE INVENTION

Briefly, an embodiment of the present invention includes a storagesystem having a storage device in communication with a host andincluding one or more function devices for communicating withapplication software modules, said application software modules issuingvendor specific commands to access said function devices, said functiondevices remaining unknown to said host and recognizing said vendorspecific commands for acting thereupon, wherein said storage devicecausing said application software modules to access said functiondevices to increase the security of said storage device.

The foregoing and other objects, features and advantages of the presentinvention will be apparent from the following detailed description ofthe preferred embodiments which make reference to several figures of thedrawing.

IN THE DRAWINGS

FIG. 1 shows a prior art PC storage system 10;

FIG. 2 shows a the prior art system 10 of FIG. 1 including some of thefunctions and devices depicted in FIG. 1 in addition to others;

FIG. 3 shows a storage system 40 to include a host 42 coupled to aremovable storage device 44 in accordance with an embodiment of thepresent invention;

FIG. 4 illustrates the storage system 40 including the driver module 48,which causes communication between the host 42 and the controller device50, which, in turn, causes communication between the host 42 and thesensor 52;

FIG. 5 shows a storage system 80 in accordance with another embodimentof the present invention;

FIG. 6 shows a flow chart 100 as an example of the steps performed inFIG. 5; and

FIG. 7 shows another alternative embodiment of the present invention toinclude a storage system 200 including the host 82 coupled to a storagedevice 202.

FIG. 8 shows, in block diagram and conceptual form, an example of avendor specific command, i.e. 0xC9 (in hexadecimal notation), and itsflow through the system 80 of FIG. 5 where the secondary function device94 is a fingerprint sensor.

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS

Referring now to FIG. 3, a storage system 40 is shown to include a host42 coupled to a storage device 44 in accordance with an embodiment ofthe present invention. The device 44 may be removably connectable to thehost 42 through the interface 41, which in one example, is a UniversalStandard Bus (USB) connector although the interface 41 may he of anyother kind. Alternatively, the device 44 is permanently connected to thehost 42. The host 42 is shown to include application software module 46coupled to a driver module 48. The controller device 50 is shown coupledto a sensor 52 and a flash memory unit 54. The flash memory unit 54includes flash or nonvolatile memory for storing various types ofelectronic information even when no power is provided to the system 40.Example of the type of information stored in the unit 54 is based on theapplication of the system 40 and can be digital photographs, passwords,personal settings and the like.

The sensor 52 is shown connected to the device 50 through a connector56, which in one example is a Serial Peripheral Interface (SPI)interface but may be of any other kind of interface. The sensor 52 is afingerprint sensor for detecting a human fingerprint when the tip of afinger is swiped thereover. The sensor 52, after noting a particularfingerprint, upon the completion of a finger swipe, causes storage ofthe fingerprint information in the flash memory unit 54 through theapplication software module 46, again through the controller device 50.In this manner, the sensor 52 is intended to add a level of security tothe system 40 so that only the person whose fingerprint is recognized ormatched to previously stored fingerprint information is given access toinformation stored in the flash memory unit 54.

An example of the application software module 46 includes ‘Smartgenie’,which is a software program for operating fingerprint information,causing storage of passwords and directing encryption information andother security-related information. The driver module 48 allows themodule 46 to communicate with the controller device 50 by convertinghigh-level software language to a lower-level comprehendible to hardwaresuch as the controller device 50. Thus, the driver module 48 issuescommands that are transmitted through the interface 41 to the controllerdevice 50 that mayor may not be followed by data through the sameinterface. As earlier stated, the host 42 may be a PC including anoperating system, such as Windows by Microsoft, Inc. of Seattle, fordirecting system functions and mapping memory and recognizing entrypoints for various devices connected to the host 42.

In FIG. 3, the sensor 52 is shown to be transparently coupled to thedriver module

48 through an interface 49, which goes through the controller device 50and onto the interface 47 and the controller device 50 is shown coupledto the driver module 48 through the interface 47. While the interface 41is dictated by USB standard, other types of interfaces may be employedwithout departing from the scope and spirit of the present invention. Itshould be understood however, that during the use of a USB interface,the inventors of the present invention have found a way communicatingwith the sensor 52 even though the latter is obviously not a flashmemory device and while such communication is formally not documented orallowed by the USB standard, as noted earlier. Briefly, the way in whichthis is performed is that vendor-specific commands are used to andincorporated into the driver module 48, from the controller device 50,that are recognized by the sensor 52 and that therefore allow the sensor52 to act or react to commands issued through the driver module 48. Theway in which this is performed will be discussed, in greater detail,shortly.

FIG. 4 shows the storage system 40 including the driver module 48, whichcauses communication between the host 42 and the controller device 50,which, in turn, causes communication between the host 42 and the sensor52. In one embodiment of the present invention, the controller device 50is physically located internally to the host 42 and in anotherembodiment of the present invention; it is physically located externallyto the host 42, as shown in FIG. 4. In one embodiment of the presentinvention, the sensor 52 is located physically externally to thecontroller device 50 and the host 42, as shown in FIG. 4 and in anotherembodiment of the present invention, the sensor 52 is physicallyconnectably removable to and from the host 42 through the connector 56although other types of connectors may be employed. The controllerdevice 50 communicates to the driver 48 through the interface 41, asdescribed hereinabove.

It should be noted that the sensor 52 remains unknown to the host 42,yet, the controller device 50 is known to the host 42. The way in whichthis is done is by identifying an endpoint, known to the host 42, forthe controller device 50, whereas, no endpoint is defined for the sensor52. That is, the controller device 50 is mapped in the memory map of thehost 42, whereas, the sensor is not mapped and thus remains invisible tothe host 42.

FIG. 5 shows a storage system 80 in accordance with another embodimentof the present invention. The system 80 is shown to include a host 82coupled to a storage device 84. The host 82 is shown to include anapplication software module 86 coupled to a driver module 88. While oneapplication software module 86 is shown in FIG. 5, many such applicationsoftware modules may be employed without departing from the scope andspirit of the present invention. The number of software modules isindependent to the number of additional functions or function devices.Two or more applications can use the same additional function devices.

The storage device 84 is shown to include a controller device 90 coupledto a flash unit 92. The controller device 90 is also shown coupled to asecondary function device 94, which is shown coupled to a third functiondevice 96, which is shown coupled to an n function device 98. The thirddevice 96 may be coupled to another function device, which may becoupled to yet another function device and the n function device 98 isintended to show the last function device in the chain of coupledfunction devices with ‘n’ being an integer number.

The application software module 86, the driver module 88, the host 82,the controller device 90 and the flash unit 92 are that of similarmodules and devices shown and discussed with respect to previousfigures. The flash unit includes one or more flash or nonvolatile memoryfor storing information received from the controller device 90. In analternative embodiment, the flash unit 92 need not employ nonvolatilememory and rather includes volatile memory.

The controller device 90 is shown coupled to the secondary functiondevice 94, which may be one of many different types of devices accordingto the application of the system 80. As examples, the secondary functiondevice 94 may be another controller device, a Light Emission Diode(LED), a fingerprint sensor, a processor, a camera, an MP3 or MPEG4decoder or encoder or other types of devices, as can the third functiondevice 96 and the n function device 98. In fact, the more functiondevices, the more functionality the system 80 is likely to include.

In one embodiment of the present invention, the host 82 is a personalcomputer (PC) and the driver module 88 is a USB mass storage driver andthe controller device 90 is a USB controller and the applicationsoftware module 86 is a Smartgenie' application software module withfingerprint matching and authentication programs.

In yet another embodiment of the present invention, the applicationsoftware module 86 is a Windows moviemaker application software moduleand the controller device 90 is an Advanced Technology Attachment (AT A)controller known to those of ordinary skill in the art.

In still another application of the present invention, the driver module88 is a wireless mass storage driver and the controller device is awireless USB controller device.

In another embodiment of the present invention, the host 82 is embeddedin an embedded system application.

In any of the foregoing applications or even other applications thoughtof or known to those of ordinary skill in the art, the configuration ofthe system, as noted above with respect to different applications may bemixed in a variety of ways without departing from the scope and spiritof the present invention.

In another embodiment of the present invention, the storage device 84 isphysically a part of the host 82.

In FIG. 5, the application software module 86 is shown coupled to thesecondary function device 94, the third function device 96 and the nfunction device 98.

It should be noted that while the devices 94-98 exist in the system 80,they remain unknown to the host 82 and to the driver module 88, as onlythe application software module 86 and the controller device 90 areaware of the devices 94-98. The application software module 86 accessesthe secondary function device 94 though the controller device 90 usingpass-through vendor specific commands, i.e. commands only known to thecontroller device 90 and the devices 94-98.

Referring now to FIG. 6, a flow chart 100 is shown as an example of thesteps performed in FIG. 5 when a read operation takes place for readinginformation from the secondary device 94 when the application softwaremodule 86 is a ‘Smartgenie’ application. Thus, the steps outlined inflow chart 100 are merely an example and many other applications,commands and functionality can be employed without departing from thescope and spirit of the present invention. The steps of FIG. 6 refer tostructures shown in FIG. 5.

In FIG. 6, at step 102, the storage device 84 is inserted into the host82 through a USB port (not shown in FIG. 5). It should be understoodthat the port connecting the host 82 to the device 84 need not be a USBport and can be any type of connection known to those of ordinary skillin the art.

It should be noted that when the term host is used herein and referredto as performing an operation or a task, it is actually the operatingsystem installed in the host, such as a Windows operating systemalthough other operating systems may be employed, is causing theperformance of such operation or task.

Next, at step 104, the program that is to be used as by the drivermodule 88 is transferred from the controller device 90 and loaded ontothe host 82 and particularly within the driver module 88. While in theexample of FIG. 6, the system 80 of FIG. 5 is to be employed as afingerprint storage system where a fingerprint sensor serves as thesecondary function device 94, the host 82, while recognizing the drivemodule 88, will not recognize the fingerprint sensor, i.e. the secondaryfunction device 94.

When the storage device 84 is inserted into the host 82, the host 82basically performs an accounting of what may be trying to communicatewith it and it recognizes only the controller device 90 and not thedevices 94-98. Accordingly, the host 82 creates what is referred to inthe industry as an ‘instance’ of the device driver for the controllerdevice 90.

It should be noted that in prior art systems, when an applicationsoftware, such as ‘Smartgenie’ is used, a manufacturer provides a drivermodule that is loaded into the host 82 for communicating to the sensoror a secondary function module 94. However, in the method and apparatusof the present invention, no such driver exists and the secondaryfunction module or sensor is actually unknown to the host 82 and thus,must be communicated thereto through the controller device 90 by the useof vendor specific commands. In fact, the driver module 88 does not knowof the communication with the secondary function module 94 either.

Next, at step 106, the application software is executed from theapplication software module 86. In this example, the applicationsoftware is ‘Smartgenie’. As noted earlier, the ‘Smargenie’ applicationsoftware causes performance of such tasks as saving of passwords, usingfingerprint as password, encrypting and decrypting files and othertasks.

Next, at step 108, the application software module 86, i.e.‘Smartgenie’, transmits a vendor specific command, through the drivermodule 88, to the controller device 90 requesting fingerprint data. Thetransmitted vendor specific command includes an embedded commandintended for the fingerprint sensor, i.e. the secondary function device94. Optionally, the controller device 90 can restrict access to theflash unit 92 to allow standard read/write commands to be issued throughthe driver module 88.

Next, at step 110, the controller device 90, upon receipt of the vendorspecific command, strips the data intended for the secondary functiondevice 94 from the vendor specific command and sends the stripped datato the secondary function device 94, i.e. the fingerprint sensor,through an SPI interface. Upon receiving the stripped data from thecontroller device 90, the fingerprint sensor is activated at step 112.

Next, at step 114, the application software module 86, i.e. theSmartgenie application software, sends a read command to the controllerdevice 90, through the driver module 88, to read the fingerprint sensor.In the read command, some parameters may be specified, such as the sizeof the data to be returned. For example, there may be a request to havethe sensor send back two kilobytes of data and upon receiving thecommand, the sensor waits until it has two kilobytes of data beforesending it to the controller device. The application software module 86may ask for additional data and continue to do so until it is satisfied.That is, the controller device 90 has no way of knowing how much data toreturn back to the application software module 86 while such informationis obviously known to the application.

Next, at step 116, in response to the read command of step 114, thesensor transmits information gathered from a fingerprint mechanism whichsweeps a user's finger to the controller device 90 and the device 90, inturn, transmits the same to the application software module 86 throughthe driver module 88. The data includes fingerprint information of theuser's fingerprint, which is clearly unique to the user and canbasically be used as a password by the user to access and/or storeinformation.

Next, at 118, a determination is made as to whether or not all of thedata of step 116, i.e. the fingerprint data, has been sent to theapplication software module 86 and if not, the process continues to step116 and continues to do so until all of the fingerprint data is sent tothe application software module 86. If, at 118, it is determined thatall of the data has been sent to the application software module 86, theprocess continues to step 120.

At step 120, the application software module 86 or the ‘Smartgenie’software causes transmission of another vendor unique command to thecontroller device 90 informing the latter that the sensor is no longerneeded. Optionally, if access to the flash unit 92 is restricted in step108, it needs to be unrestricted at this step to allow read/writecommands to work as intended through the driver module 88.

Next, at step 122, the sensor is inactivated, as it is no longernecessary to read any further fingerprint data.

In the example of FIG. 6, all communication originates from the host 82and particularly the application software module 86. Also, while only avendor specific read command is discussed relative to FIG. 6, data maybe saved to the secondary function device 94 though the use of a vendorspecific write command issued by the application software module 86 tothe controller device 90 through the driver module 88. Optionally,during read and/or write commands, access to the flash unit 92 may beprohibited either by the host 82 or the controller device 90. While notdiscussed in the example of FIG. 6, in another embodiment of the presentinvention, the secondary function device 94 may be a master to the thirdfunction device 96 and is connected to the controller device 90 througha Universal Asynchronous Read Transmit (UART)/SPI interface or otherserial or parallel interfaces.

As stated earlier, the secondary and third and so on function devices94-98 may be any combination of devices, such as one or more controllerdevices or processors or sensors or cameras and any other digitaldevice.

By way of example, the following is source code showing how anapplication software module sends commands to a secondary functiondevice, through the controller device. Particularly, this is an exampleof how the application software module 86 would communicate with asensor (or secondary function device 94) through the controller device90 using the driver module 88.

 #include <ntddscsi.h> // this header file is used for definitions ofSCSI functions and structures              //this header file isprovided with the Microsoft device driver kit for              //VisualStudio 6.0              //specifically used in this example:             // SCSI_PASS_THROUGH_WITH_BUFFERS -- structure used tosetup CDB              //SCSI_PASS_THROUGH-- structure used for sizedefinitions              //DeviceIoControl -- function to send scsistructure to the flash controller  /*  * int main(int argc, char **argv) *  * Description:  * This is the main function. The entry point forprogram execution.  *  * Inputs:  * argc - the number of command linearguments.  *  */  int main(int argc, char **argv)  {    HANDLEcontrollerHandle = NULL;  //a file handle for talking to the USBcontroller    SCSI_PASS_THROUGH_(—) WITH_BUFFERS sptwb;  //a datastructure that contains all the information I intend to send to the controller    char deviceString[25] =“\\\\.\\PhysicalDrive0”;  //example address to the USB controller   unsigned long returned = 0;  //value that is returned from thecontroller on status of the operation    //open a control pipe to theflash controller through the mass storage driver.    controllerHandle =CreateFile(deviceString,    // name of the “file” to open    GENERIC_WRITE|GENERIC_READ,    //access granted     FILE_SHARE READ| FILE_SHARE _WRITE,  //share mode     NULL,    //security parameters -default is NULL     OPEN_EXISTING,    //do not create this, only open ifthe device is there     0,     //file attributes     NULL);     //ahandle to another file with atributes I want to use    //setup thestandard part of the SCSI header and CDB    ZeroMemory(&sptwb,sizeof(SCSI_PASS_THROUGH_WITH_BUFFERS));    sptwb.spt.Length =sizeof(SCSI_PASS THROUGH);    sptwb.spt.PathId = 0;   sptwb.spt.TargetId = 1;    sptwb.spt.Lin = 0;    sptwb.spt.CbdLength= CD10GENERIC_LENGTH;    sptwb.spt.SenseInfoLength = 24;   sptwb.spt.DataIn = SCSI_IOCTL_DATA_IN;   sptwb.spt.DataTransferLength = INQUIRYDATALEN; //512; sptwb.spt.TimeOutValue = 2;    sptwb.spt.DataBufferOffset=offsetof(SCSI_PASS_THROUGH_WITH_BUFFERS,ucDataBuf); sptwb.spt.DataBufferOffset = (ULONG)(offsetof(SCSI_PASS_THROUGH_WITH_BUFFERS,ucDataBuf));   sptwb.spt.SenseInfoOffset =offsetof(SCSI_PASS_THROUGH_WITH_BUFFERS,ucSenseBuf);    //setup the 16byte CDB with the vendor specific command    //this example could be totell the bio-metric sensor to starting reading data from the sensor and   //buffer it for the application to read later for matching purposes.   //the values are created artificially and do not exist in anydocumentation - used purely for explanation purposes.   sptwb.spt.Cdb[0] = 0x00c9; // this tells the controller that thecommand is pass through to the bio sensor    sptwb.spt.Cdb[1] =0x0033; // vendor specific command saying that I am writing a register   sptwb.spt.Cdb[2] = 0x0000; // vendor specific null character   sptwb.spt.Cdb[3] = 0x0001; // vendor specific register identifier   sptwb.spt.Cdb[4] = 0x006e; // vendor specific value for the register   sptwb.spt.Cdb[5] = 0x0000; // the rest are left 0's as they areunneeded by the vendor    sptwb.spt.Cdb[6] = 0x0000;    sptwb.spt.Cdb[7]= 0x0000;    sptwb.spt.Cdb[8] = 0x0000;    sptwb.spt.Cdb[9] = 0x0000;   sptwb.spt.Cdb[10] = 0x0000;    sptwb.spt.Cdb[11] = 0x0000;   sptwb.spt.Cdb[12] = 0x0000;    sptwb.spt.Cdb[13] = 0x0000;   sptwb.spt.Cdb[14] = 0x0000;    sptwb.spt.Cdb[15] = 0x0000;    //thisfunction call is used to send the SCSI CDB to the flash controllerthrough the USB mass    //storage driver.   DeviceIoControl(controllerHandle,     IOCTL_SCSI_PASS _THROUGH,    &sptwb,     sizeof(SCSI_PASS_THROUGH),     &sptwb,     length,    &returned,     FALSE);    /*    * now that I have told the sensor toget data, I need to read the data from the sensor    * the process isvery similar to the above and is not repeated to keep the example brief   *    */    CloseHandle(fileHandle);    return 0;  }

In FIG. 7, another alternative embodiment is shown to include a storagesystem 200 including the host 82 coupled to a storage device 202. Thestorage system 200 of FIG. 7 is similar to that of the system 80 of FIG.5 except that the controller device 90 is coupled to a plurality ofsecondary function devices in parallel. In FIG. 7, the host 82 is shownto include the application software module 86 coupled to the drivermodule 88, which causes communication to the controller device 90 of thestorage device 202. The structures, connection and coupling of thesystem 200 of FIG. 7 is similar to that of system 80 in FIG. 5 and thus,will not be discussed as to those similar structures, connection andcoupling to avoid redundancy.

Unlike FIG. 5, the controller device 90 of FIG. 7 is shown coupled to aplurality of secondary function devices 94, 204 and 208. It should benoted that any number of secondary function devices may be coupled, inparallel, to the controller device 90. An example of an application ofsuch a system is to have the secondary function device 94 be a sensorwhile the secondary function device 204 is an LED. The sensor as well asthe LED are controlled by the application software module 86 rather thanthe controller device 90, as done by the prior art.

One of the advantages of the present invention is that the secondary,third and so on function devices, such as 94-98 of FIGS. 5 and 94, 204and 208 of FIG. 7, remain unknown to the operating system of the hostand thus are not accessed or used in any way by third parties, whichgreatly increases the security of the latter devices. Thus, if afingerprint sensor is used as a secondary function device, itsinformation will never be known, accessed or manipulated by others. Thisis accomplished, as stated above, by the use of vendor specificcommands, which remain unknown to third parties.

Yet another advantage of the present invention is avoiding drivercertification (WHQL, for example—by Microsoft) by the manufacturer ofthe operating system used by the host. That is, when a device, such as asensor is to be added to a PC, the manufacturer of the operating system,such as Microsoft, Inc., will have to certify the device by adding adevice driver to the next version of the operating system it releases,which is a painstaking and perhaps prolonged process to both Microsoftand particularly to those in need of the device. The present inventionavoids such a certification by modifying the application software of theapplication software module to cause communication with the device orsensor through the use of vendor unique commands facilitated by thecontroller device. There is no additional software to certify.

The present invention allows for a driver module, the driver module 88of FIG. 5, to communicate to a standard device, i.e. the controllerdevice 90 of FIG. 5, but actually controlling a third or more devices,i.e. the secondary function device 94 of FIGS. 5 and 7, by embeddingcommands directed to the third or more devices. A practical example isif in FIG. 5, the secondary function device 94 is a Liquid CrystalDisplay (LCD) monitor and the driver module 88 controls a keyboard.Accordingly, the application software module 86 sends an image to thekeyboard and by doing so, the controller device 90 would know to sendthe image to the monitor for display.

As stated earlier, the device 84 of FIG. 5 may be physically locatedwith the host 82, i.e. an embedded system.

The storage systems of the present invention, as presented in theforegoing figures, operate with less current than that of prior artsystems, thus, helping to use devices that qualify under low powerdevices in the USB specification (for example) and to preserve batterypower in wireless devices that include their own power source.

The storage systems shown in FIGS. 3, 5 and 7, include a processor (notshown), or computer medium, some type of storage area and a computerreadable medium, for storing the software/firmware described in FIGS. 3,5 and 7. The processor executes codes from the computer readable mediumfor effectuating the functions outlined in FIGS. 3, 5 and 7.

FIG. 8 shows, in block diagram and conceptual form, an example of avendor unique command, i.e. 0xC9 (in hexadecimal notation), and its flowthrough the system 80 of FIG. 5 where the secondary function device 94is a fingerprint sensor.

Particularly, the controller device 90 receives the command, inhexadecimal code notation, 0xC9 from the application module 86 and thenpasses it on to the secondary function device or sensor 94. The commandis followed by bytes needed for the registers of the sensor (not shown).The controller device 90 then passes these bytes onto the sensor.

It should be noted that in the example of FIG. 8, there is no datainvolved with the command. The controller device 90 sends a status tothe host regarding whether or not the command is successful, in whichcase a status of ‘good’ is returned to the host, otherwise, a status of‘check condition’ is sent to the host.

Although the present invention has been described in terms of specificembodiment, it is anticipated that alterations and modifications thereofwill no doubt become apparent to those more skilled in the art. It istherefore intended that the following claims be interpreted as coveringall such alterations and modification as fall within the true spirit andscope of the invention.

1. A device comprising: a controller; and a function module configuredto be in communication with the controller as a result of the controllerreceiving a pass-through vendor specific command.
 2. The device of claim1, wherein the function module comprises a sensor.
 3. The device ofclaim 1, wherein the device comprises a storage device.
 4. The device ofclaim 1, wherein the function module is located physically externally tothe controller.
 5. The device of claim 1, wherein the function module isconfigured to be physically connectably removable to and from thecontroller.
 6. The device of claim 1, wherein the controller and thefunction module comprise a storage device, and further comprising a hostconfigured to communicate with the controller.
 7. The device of claim 6,wherein the host comprises an application software module configured tosend the pass-through vendor specific command.
 8. The device of claim 7,wherein the host further comprises a driver module configured to allowthe application software module to send the pass-through vendor specificcommand through the driver module to the controller.
 9. The device ofclaim 7, wherein the application software module is configured to sendthe pass-through vendor specific command to access the function module.10. The device of claim 1, wherein the function module comprises a firstfunction device, and further comprising a second function device. 11.The device of claim 10, wherein the second function device is coupled tothe first function device.
 12. The device of claim 10, wherein thesecond function device and the first function device are coupled to thecontroller in parallel.
 13. The device of claim 1, wherein the functionmodule configured to be in communication with the controller as a resultof the controller receiving a pass-through vendor specific commandcomprises the function module being configured to recognize the vendorspecific command for acting thereupon.
 14. The device of claim 1,further comprising a memory unit configured to store informationreceived from the controller.
 15. The device of claim 1, wherein thememory unit comprises a non-volatile memory unit.
 16. The device ofclaim 2, wherein the sensor comprises a fingerprint sensor.
 17. Thedevice of claim 1, wherein the controller comprises a controller device.18. The device of claim 6, wherein an endpoint for the controller isknown to the host and wherein no endpoint is defined for the functionmodule.
 19. The device of claim 6, wherein the controller is mapped inthe memory map of the host and the function module is not mapped. 20.The device of claim 1, wherein the function module comprises one ofanother controller, a Light Emission Diode (LED), a fingerprint sensor,a processor, a camera, a decoder, or an encoder.
 21. The device of claim1, wherein the controller comprises a USB controller.
 22. The device ofclaim 21, wherein the USB controller comprises a wireless USBcontroller.
 23. The device of claim 1, wherein the controller comprisesan Advanced Technology Attachment (ATA) controller.
 24. The device ofclaim 6, wherein the host does not include a driver module configured tocommunicate with the function module.
 25. The device of claim 1, whereinthe function module comprises function device.
 26. The device of claim1, wherein the vendor specific command comprises an embedded commandintended for the function module.
 27. The device of claim 14, whereinthe controller is configured to restrict access to the memory unit. 28.The device of claim 1, wherein the controller is configured to stripdata intended for the function module from the vendor specific commandand send the stripped data to the function module.
 29. The device ofclaim 28, wherein the function module is configured to be activated uponreceiving the stripped data from the controller.
 30. The device of claim10, wherein the first function device is a master to the second functiondevice.
 31. The device of claim 1, wherein the controller is coupled tothe function device through a Universal Asynchronous Read Transmit(UART) interface.
 32. The device of claim 1, wherein the controller iscoupled to the function device through a SPI interface.
 33. The deviceof claim 1, wherein the function module comprises a Liquid CrystalDisplay (LCD) monitor.
 34. A device comprising: a controller; a functionmodule configured to be in communication with the controller as a resultof the controller receiving a pass-through vendor specific command; anda memory unit configured to store information received from thecontroller.
 35. A system, comprising: a host; a controller; and afunction module configured to be in communication with the controller asa result of the controller receiving a pass-through vendor specificcommand.